Problems with Troj Vundo.CXJ and others

My pc is infected with a virus. I get a non-stop Trend Micro warning of [Troj Vundo.CXJ ddcArSJc.dll]. I have ran the Deckard's system scanner as well as a Panda Activescan. I believe it has disabled Windows Updates, the Windows Search option in the Start menu, and oddly Windows Media Player (when i click on it, WMP doesn't open...strange). This all started a few days ago. Any help will be much appreciated, thanks.

Deckard's System Scanner v20071014.68
Run by Mike & Michelle on 2008-06-07 10:18:06
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Mike & Michelle.exe) -------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:18:08 AM, on 6/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\TOSHIBA\gigabeat room 3.0\TosGbWatcher.exe
C:\WINDOWS\system32\svdhost.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Mike & Michelle\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\MIKE&M~1.EXE

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {087080C2-CE44-4E75-982E-ABB69C63A176} - C:\WINDOWS\system32\tuvUlJYR.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: {b93be280-d448-20e9-e064-3927fdf3a0d7} - {7d0a3fdf-7293-460e-9e02-844d082eb39b} - C:\WINDOWS\system32\kfhcgsqk.dll
O2 - BHO: (no name) - {BDD714BC-D36C-487B-8142-8BA020FB6535} - C:\WINDOWS\system32\ddcArSJc.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [TosGbWatcher] "C:\Program Files\TOSHIBA\gigabeat room 3.0\TosGbWatcher.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Windows Sound] svdhost.exe
O4 - HKLM\..\Run: [Microsoft WinUpdate] C:\WINDOWS\system32\msupdte.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [44a07517] rundll32.exe "C:\WINDOWS\system32\oepsrcbf.dll",b
O4 - HKLM\..\Run: [BM4793468b] Rundll32.exe "C:\WINDOWS\system32\uyibarnf.dll",s
O4 - HKLM\..\RunServices: [Windows Sound] svdhost.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-73586283-1450960922-682003330-1005\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe" (User 'Ramsey & Heather')
O4 - HKUS\S-1-5-21-73586283-1450960922-682003330-1005\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Ramsey & Heather')
O4 - HKUS\S-1-5-21-73586283-1450960922-682003330-1005\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (User 'Ramsey & Heather')
O4 - HKUS\S-1-5-21-73586283-1450960922-682003330-1005\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" (User 'Ramsey & Heather')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aim toolbar 5.0\resources\en-US\local\search.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - http://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52...pple.com/mickey/us/win/QuickTimeInstaller.exe
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1190164841031
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.putfile.com/includes/ImageUploader4-5.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A4110378-789B-455F-AE86-3A1BFC402853} (ZPA_SHVL Object) - http://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab
O16 - DPF: {DA758BB1-5F89-4465-975F-8D7179A4BCF3} (WheelofFortune Object) - http://messenger.zone.msn.com/binary/WoF.cab57176.cab
O20 - Winlogon Notify: ddcArSJc - C:\WINDOWS\SYSTEM32\ddcArSJc.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
O23 - Service: SQLAgent$SONY_MEDIAMGR - Toshiba Corporation - (no file)
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe

--
End of file - 11944 bytes

-- Files created between 2008-05-07 and 2008-06-07 -----------------------------

2008-06-07 09:44:43 92160 --a------ C:\WINDOWS\system32\oepsrcbf.dll
2008-06-07 09:41:44 2560 --a------ C:\WINDOWS\system32\dkxjoabq.exe
2008-06-07 09:39:34 108544 --a------ C:\WINDOWS\system32\kfhcgsqk.dll
2008-06-07 09:39:22 101376 --a------ C:\WINDOWS\system32\uyibarnf.dll
2008-06-07 09:38:41 729773 --ahs---- C:\WINDOWS\system32\dghilUvw.ini2
2008-06-07 09:38:39 347136 --a------ C:\WINDOWS\system32\wvUlihgd.dll
2008-06-07 00:49:58 0 d-------- C:\Program Files\Panda Security
2008-06-07 00:49:57 0 d-------- C:\WINDOWS\LastGood
2008-06-07 00:43:10 1720086 --a------ C:\WINDOWS\system32\TmpA4979000
2008-06-06 23:54:04 2560 --a------ C:\WINDOWS\system32\tlorhmyp.exe
2008-06-06 23:51:03 91648 --a------ C:\WINDOWS\system32\bwspvfdo.dll
2008-06-06 23:48:03 108544 --a------ C:\WINDOWS\system32\nurjlvkc.dll
2008-06-06 23:46:02 100864 --a------ C:\WINDOWS\system32\rovlxmvf.dll
2008-06-06 23:45:01 730193 --ahs---- C:\WINDOWS\system32\RtAIOqss.ini2
2008-06-06 23:44:58 347136 --a------ C:\WINDOWS\system32\ssqOIAtR.dll
2008-06-06 23:38:02 520192 --a------ C:\WINDOWS\system32\wscma2u.exe <Not Verified; YAMAHA CORPORATION; WSC-MA2 (UTF-8)>
2008-06-06 23:38:02 193536 --a------ C:\WINDOWS\system32\atomid.exe
2008-06-06 23:38:02 278528 --a------ C:\WINDOWS\system32\ammpp.dll
2008-06-06 23:38:02 65536 --a------ C:\WINDOWS\system32\a1.dll
2008-06-06 23:38:01 0 d-------- C:\Program Files\AnMing
2008-06-06 23:24:54 91648 -----n--- C:\WINDOWS\system32\rsqaqnww.dll
2008-06-06 23:24:50 2560 --a------ C:\WINDOWS\system32\pdlvybag.exe
2008-06-06 23:23:24 108544 --a------ C:\WINDOWS\system32\mbrhwwxe.dll
2008-06-06 23:23:14 100864 --a------ C:\WINDOWS\system32\woxpuehu.dll
2008-06-04 10:39:41 0 d-------- C:\Program Files\CCleaner
2008-06-03 16:01:18 2560 --a------ C:\WINDOWS\system32\ydiowrli.exe
2008-06-03 16:01:12 133120 --a------ C:\WINDOWS\system32\latmqvub.dll
2008-06-03 15:58:13 115200 -----n--- C:\WINDOWS\system32\urbvopgx.dll
2008-06-03 15:56:37 125952 --a------ C:\WINDOWS\system32\hhensmwu.dll
2008-06-02 14:56:24 0 d-------- C:\Documents and Settings\Mike & Michelle\Application Data\Winamp
2008-06-02 12:13:27 133120 --a------ C:\WINDOWS\system32\bmcooibd.dll
2008-06-02 12:10:07 133120 --a------ C:\WINDOWS\system32\akytaxnx.dll
2008-06-02 12:06:26 125952 --a------ C:\WINDOWS\system32\xlsrolmt.dll
2008-06-01 11:54:58 132096 --a------ C:\WINDOWS\system32\afxjnohw.dll
2008-06-01 11:45:57 126464 --a------ C:\WINDOWS\system32\uxcwxsvy.dll
2008-05-31 11:51:58 132096 --a------ C:\WINDOWS\system32\mqamhoki.dll
2008-05-31 11:45:57 126464 --a------ C:\WINDOWS\system32\ajoaxkft.dll
2008-05-30 12:22:11 0 d-------- C:\Documents and Settings\Mike & Michelle\Application Data\Apple Computer
2008-05-30 11:45:32 134144 --a------ C:\WINDOWS\system32\ddlblrxo.dll
2008-05-30 11:44:20 125440 --a------ C:\WINDOWS\system32\posxinyw.dll
2008-05-28 00:07:54 0 d-------- C:\Program Files\Bodog Poker
2008-05-28 00:07:52 0 d-------- C:\Program Files\Avanquest update
2008-05-28 00:07:43 0 d-------- C:\Program Files\Motorola Phone Tools
2008-05-28 00:07:42 0 d-------- C:\Documents and Settings\Ramsey & Heather\Application Data\InstallShield
2008-05-28 00:07:42 0 d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-05-28 00:07:37 0 d-------- C:\Media
2008-05-28 00:07:36 0 d-------- C:\WINDOWS\system32\Data
2008-05-28 00:07:35 0 d-------- C:\Program Files\Creative
2008-05-27 19:15:08 7077888 --a------ C:\Documents and Settings\Ramsey & Heather\ntuser.dat
2008-05-27 17:00:47 729648 --ahs---- C:\WINDOWS\system32\RYJlUvut.ini2
2008-05-27 17:00:43 370688 --a------ C:\WINDOWS\system32\tuvUlJYR.dll
2008-05-27 16:55:26 57344 --a------ C:\WINDOWS\system32\ddcArSJc.dll
2008-05-26 14:20:37 0 d-------- C:\Program Files\Winamp
2008-05-26 14:20:37 0 d-------- C:\Documents and Settings\Ramsey & Heather\Application Data\Winamp


-- Find3M Report ---------------------------------------------------------------

2008-06-02 14:28:23 0 d-------- C:\Program Files\SpywareBlaster
2008-05-28 00:07:32 0 d-------- C:\Program Files\MalwareAlarm
2008-05-27 19:16:09 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-05-19 14:29:13 0 d-------- C:\Program Files\Soulseek
2008-05-13 09:52:25 35564 --a------ C:\amt1
2008-05-06 22:41:32 0 d-------- C:\Program Files\QuickTime
2008-04-26 12:57:02 0 d-------- C:\Program Files\Common Files\DVDVideoSoft
2008-04-26 12:57:01 0 d-------- C:\Program Files\Common Files
2008-04-26 12:56:45 0 d-------- C:\Program Files\DVDVideoSoft
2008-04-16 08:20:52 0 d-------- C:\Program Files\Google
2008-04-14 11:43:21 1720086 --a------ C:\WINDOWS\system32\TmpA1810812
2008-04-14 11:42:50 0 d-------- C:\Program Files\ErrorSmart
2008-04-13 00:53:07 0 d-------- C:\Documents and Settings\Mike & Michelle\Application Data\Real
2008-03-09 01:15:33 86528 --a------ C:\WINDOWS\system32\VACFix.exe <Not Verified; S!Ri.URZ; VACFix>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{087080C2-CE44-4E75-982E-ABB69C63A176}]
05/27/2008 05:00 PM 370688 --a------ C:\WINDOWS\system32\tuvUlJYR.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7d0a3fdf-7293-460e-9e02-844d082eb39b}]
06/07/2008 09:39 AM 108544 --a------ C:\WINDOWS\system32\kfhcgsqk.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDD714BC-D36C-487B-8142-8BA020FB6535}]
05/27/2008 04:55 PM 57344 --a------ C:\WINDOWS\system32\ddcArSJc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [04/24/2003 05:58 PM]
"diagent"="C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" [04/03/2002 02:01 AM]
"UpdReg"="C:\WINDOWS\UpdReg.EXE" [05/11/2000 02:00 AM]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [12/10/2004 01:45 PM C:\WINDOWS\KHALMNPR.Exe]
"pccguide.exe"="C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe" [08/25/2006 12:25 PM]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [01/12/2006 04:40 PM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [01/15/2008 04:22 AM]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [01/11/2008 11:16 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25 AM]
"TosGbWatcher"="C:\Program Files\TOSHIBA\gigabeat room 3.0\TosGbWatcher.exe" [11/07/2005 03:00 AM]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [03/31/2008 07:31 AM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [03/28/2008 11:37 PM]
"Windows Sound"="svdhost.exe" [06/13/2007 05:23 AM C:\WINDOWS\system32\svdhost.exe]
"Microsoft WinUpdate"="C:\WINDOWS\system32\msupdte.exe" []
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [04/01/2008 01:49 PM]
"44a07517"="C:\WINDOWS\system32\oepsrcbf.dll" [06/07/2008 09:44 AM]
"BM4793468b"="C:\WINDOWS\system32\uyibarnf.dll" [06/07/2008 09:39 AM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/12/2004 08:56 AM]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [06/01/2006 01:32 PM]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 11:24 AM]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" []
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" []

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"Windows Sound"=svdhost.exe

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [3/8/2007 10:29:43 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
@=

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{BDD714BC-D36C-487B-8142-8BA020FB6535}"= C:\WINDOWS\system32\ddcArSJc.dll [05/27/2008 04:55 PM 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ddcArSJc]
ddcArSJc.dll 05/27/2008 04:55 PM 57344 C:\WINDOWS\system32\ddcArSJc.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Authentication Packages"= msv1_0 C:\WINDOWS\system32\tuvUlJYR

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
ympcnh ympcnh




-- End of Deckard's System Scanner: finished at 2008-06-07 10:18:35